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- Extensions of time may be available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)S Responsive to communication(s) filed on 17 June 2005 . 
2a)D This action is FINAL. 2b)S This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) K Claim(s) 1-36 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) ^ Claim(s) 1-36 is/are rejected. 

7) D Claim(s) is/are objected to. 

S)\3 Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9)D The specification is objected to by the Examiner. 

10) ^ The drawing(s) filed on 08 April 2004 is/are: a)H accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

11) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. D Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 



Attachment(s) 

1) S Notice of References Cited (PTO-892) 4) O Interview Summary (PTO-413) 

2) □ Notice of Draftsperson's Patent Drawing Review (PTO-948) Paper No(s)/Mail Date. . 

3) S Information Disclosure Statement(s) (PTO-1449 or PTO/SB/08) 5) □ Notice of Informal Patent Application (PTO-1 52) 

Paper No(s)/Mail Date 8/4/2004 . 6) □ Other: . 



U.S. Patent and Trademark Office 

PTOL-326 (Rev. 7-05) 



Office Action Summary 



Part of Paper No./Mail Date 20051 109 



Application/Control Number: 1 0/821 ,31 3 Page 2 

Art Unit: 2131 

DETAILED ACTION 

Priority 

1 . No claim for priority has been made in this application. 

The effective filing date for the subject matter defined in the pending claims in 
this application is 04/08/2004. 

Claim Rejections - 35 USC § 102 

The following is a quotation of the appropriate paragraph of 35 U.S.C. 102 that 
forms the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in (1) an application for patent, published under section 122(b), by another filed 
in the United States before the invention by the applicant for patent or (2) a patent granted on an application for 
patent by another filed in the United States before the invention by the applicant for patent, except that an 
international application filed under the treaty defined in section 351(a) shall have the effects for purposes of this 
subsection of an application filed in the United States only if the international application designated the United 
States and was published under Article 2 1 (2) of such treaty in the English language. 

2. Claims 1 - 36 are rejected under 35 U.S.C. 102(e) as being anticipated by Albert 
et al. (PN: 2003/0177389). 

As per claim 1,16 and 30, Albert teaches a method to verify configuration of a 
client access device requesting access to a network, the method including: 

establishing a communications link with the client access device to authenticate 
and authorize a user associated with the client access device (Albert: Para [0025], 
[0066], [0072] and Figure 3); 
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receiving client device configuration data from the client access device over the 
communications link during an authentication and authorization exchange (Albert: Para 
[0025], [0066], [0072] and Figure 3); 

processing the client device configuration data (Albert: Para [0025], [0066], 
[0072] and Figure 3); and 

selectively granting the client access device access to the network based upon 
the client device configuration data (Albert: Para [0025], [0066], [0072] and Figure 3). 

As per claim 3 and 34, Albert teaches a method to manage access to a network 
from a client access device, the method including: 

requesting access to the network (Albert: Para [0025], [0066], [0072] and Figure 

3); 

authenticating a user associated with the client access device in an 
authentication and authorization exchange (Albert: Para [0025], [0066], [0072] and 
Figure 3); 

communicating client device configuration data to a network access system 
(Albert: Para [0025], [0066], [0072] and Figure 3); 

receiving a verification response from the network access system (Albert: Para 
[0077] and [0085] - [0098]); and 

accessing the network if the user is authenticated and the verification response 
from the network access system accepts the client device configuration data (Albert: 
Para [0077] and [0085] - [0098]). 
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As per claim 36, Albert teaches a method of controlling access by a client device 
to a network in a multi-party service access environment, the method including: 

receiving an access request from the client device to access the network in an 
authentication and authorization exchange (Albert: Para [0025]); 

receiving configuration data from the client device during the authentication and 
authorization exchange, the configuration data identifying a security status of the client 
device (Albert: Para [0085]); and 

selectively granting the client device access to the network based on the 
configuration data (Albert: Para [0066]). 

As per claim 2 and 17, Albert teaches processing the client device configuration 
data includes determining if the client device configuration data meets predetermined 
security requirements (Albert: Para [0025], [0066] and [0072]). 

As per claim 3 and 18, Albert teaches determining if the client device 
configuration data meets predetermined security requirements includes comparing the 
client device configuration data with reference configuration data (Albert: Para [0066] 
and [0085] - [0098]). 

As per claim 4 and 19, Albert teaches updating the client device configuration 
data if the client device configuration data fails to meet the predetermined security 
requirements (Albert: Para [0025], [0066], [0072] and [0085] - [0098] & Figure 3). 
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As per claim 5 and 20, Albert teaches selectively granting the client access 
device access to the network includes, denying access to the network if the client 
device configuration data is not updated (Albert: Para [0025], [0066], [0072] and [0085] 
- [0098] & Figure 3). 

As per claim 6 and 21 , Albert teaches the establishing of the communications link 
with the client access device includes, communicating an agent to the client access 
device, the agent operable to identify the client device configuration data and to 
communicate the client device configuration data to a server of the network (Albert: 
Para [0025], [0072], [0066] and [0085] - [0098] & Figure 3). 

As per claim 7 and 22, Albert teaches if after the processing of the client device 
configuration data the client device configuration data requires an update, using the 
agent to update the client, access device with updated configuration data (Albert: Para 
[0025], [0072], [0066] and [0085] - [0098] & Figure 3). 

As per claim 8 and 23, Albert teaches after updating the client access device, 
receiving an update result indicator from the agent to confirm that the configuration of 
the client access device has been updated (Albert: Para [0072]). 
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As per claim 9 and 24, Albert teaches the establishing of the communications link 
with the client access device includes communicating a command set, which includes 
at least one command, to the client access device, the command set operable to 
identify the client device configuration data and to communicate the client device 
configuration data to a server of the network (Albert: Para [0085] - [0098] & Figure 3). 

As per claim 1 0 and 25, Albert teaches if after the processing of the client device 
configuration data the client device configuration data requires an update, using the 
command set to update the client access device with updated configuration data 
(Albert: Para [0066] and [0085] - [0098] & Figure 3). 

As per claim 1 1 and 27, Albert teaches the command set further includes a first 
command set to identify and communicate the client device configuration data to the 
server, and a second command set to update the client access device with the updated 
configuration data (Albert: Para [0066] and [0085] - [0098] & Figure 3). 

As per claim 12 and 26, Albert teaches after updating the client access device, 
receiving an update result indicator from the client access device to confirm that the 
configuration of the client access device has been updated (Albert: Para [0066] and 
[0085] - [0098] & Figure 3). 
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As per claim 13 and 28, Albert teaches after establishing communications with 
the client access device, authenticating a user associated with the client access device 
(Albert: Para [0085] - [0098] & Figure 3). 

As per claim 14, Albert teaches authenticating the user includes verifying user 
login information associated with the user attempting access to the network (Albert: 
Para [0085]). 

As per claim 15, 29 and 31 , Albert teaches the client device configuration data 
includes at least one of virus definition data, firewall configuration data, and operating 
system configuration data (Albert: Para [0090]). 

As per claim 33 and 35, Albert teaches prior to receiving a verification response, 
updated configuration data is received from the network access system to replace the 
client device configuration data (Albert: Para [0097] and [0098]). 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Longbit Chai whose telephone number is 571-272-3788. 
The examiner can normally be reached on Monday-Friday 8:00am-4:00pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz R. Sheikh can be reached on 571-272-3795. The fax phone number 
for the organization where this application or proceeding is assigned is 571-273-8300. 

Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). 
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